U.S. Application No. 10/786,072 

Amendments to the Claims : 

This listing of claims will replace all prior versions, and listings, of claims in the 
application: 

Listing of Claims : 

1.-16. (canceled) 

17. (Currently amended) An access control system in which a plurality of 
storage devices for storing information resources and access controllers for 
controlling accesses to the information resources stored in the storage devices are 
connected with a network, each of the access controllers having an access control 
list on which access right to each information resource stored in the storage devices 
is recorded, and each of the access controllers having an access prohibition list on 
which access prohibited users are recorded who are prohibited from accessing any 
information resource stored in the storage devices, each access controller 
comprising: 

an access restriction module configured to restrict access to each information 
resource stored in a storage device and listed on the access control list of the access 
controller that records access right to each information resource;-and 

an access interception module configured to restrict the access by reference 
to the access prohibition list of the access controller, which records user information 
of access prohibited users, prior to the access control list;-and 

a list update module configured to update the access prohibition list: 
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an access control list update module configured to update the access control 
list according to the updated access prohibition-Hstr list; and 
a distribution module; 

wherein the distribution module of at least one of the access controllers 
havinq-the an updated access prohibition list further compr i s i ng a d i str i but i on modu l o 
is configured to send out the user information or the updated access prohibition list 
to the other access controllers in response to tho update the access prohibition list of 
the sending access controller being updated ;-af>d 

wherein the list update module of each of the other access controllers furth e r 
compr i s i ng a li st updat e modu le j s configured to receive the user information or the 
updated access prohibition list and to update the access prohibition list thereof to 
include the received user information or updated access prohibition list, 

whoro i n tho d i str i but i on modu l o of each accoss contro ll er sonde out tho usor 
i nformat i on or tho updated proh i b i t i on Not to a prodotorm i nod othor ono of tho accooG 
contro ll ers, thoroby transm i tt i ng tho usor informat i on or tho updated proh i b i t i on li st 
from ono accoss contro ll er to another, and 

wherein after the list update module of each of the other access controllers 
updates the access prohibition list thereof, the access control list update module 
thereof updates the access control list thereof according to the updated access 
prohibition list thereof; 

wherein in response to completing the updating of the access control list 
thereof, each of the other access controllers notifies the sending access controller of 
said completion; and 
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wherein the list update module of the sending access controller deletes the 
user information-onor the access prohibition list thereof at a predetermined timing 
after receiving the completion notifications from the other access controllers . 

18. - 28. (Canceled) 

29. (New) An access control system according to claim 17, wherein the 
sending access controller is configured to send an instruction to each of the other 
access controllers for deleting the user information or updated access prohibition list 
sent thereto, said instruction being sent by the sending access controller to each of 
the other access controllers after receiving said notification of completion therefrom. 

30. (New) An access control system according to claim 29, wherein each of 
the access controllers manages a different respective information resource on the 
basis of at least one of the access control list and the access prohibition list in the 
access controller to control accesses from a client computer with user information. 

31 . (New) An access control system according to 29, wherein each of the 
access controllers manages information resources in a different respective first 
network, and each of the first networks is coupled to a second network. 
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